[ OK ] Started Getty on tty4. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.52' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 73.403518][ T8469] IPVS: ftp: loaded support on port[0] = 21 [ 73.463040][ T8492] ================================================================================ [ 73.472675][ T8492] UBSAN: shift-out-of-bounds in ./include/net/red.h:312:18 [ 73.479989][ T8492] shift exponent 109 is too large for 64-bit type 'long unsigned int' [ 73.488254][ T8492] CPU: 0 PID: 8492 Comm: syz-executor886 Not tainted 5.11.0-rc6-syzkaller #0 [ 73.500519][ T8492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.510598][ T8492] Call Trace: [ 73.513894][ T8492] dump_stack+0x107/0x163 [ 73.518253][ T8492] ubsan_epilogue+0xb/0x5a [ 73.522673][ T8492] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x181 [ 73.529535][ T8492] ? ktime_get+0x1bf/0x1e0 [ 73.534582][ T8492] ? lockdep_hardirqs_on+0x79/0x100 [ 73.539802][ T8492] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 73.545543][ T8492] ? ktime_get+0x167/0x1e0 [ 73.550112][ T8492] red_enqueue.cold+0x64/0x452 [ 73.554891][ T8492] ? red_destroy+0x70/0x70 [ 73.559312][ T8492] ? rwlock_bug.part.0+0x90/0x90 [ 73.564265][ T8492] __dev_queue_xmit+0x1913/0x2dd0 [ 73.569309][ T8492] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 73.574749][ T8492] ? ip_finish_output2+0x83d/0x21b0 [ 73.579983][ T8492] ? lock_downgrade+0x6d0/0x6d0 [ 73.584888][ T8492] ? do_raw_write_lock+0x11a/0x280 [ 73.590030][ T8492] ? memcpy+0x39/0x60 [ 73.594037][ T8492] neigh_resolve_output+0x4d8/0x7e0 [ 73.599274][ T8492] ip_finish_output2+0x83d/0x21b0 [ 73.604328][ T8492] ? ip_skb_dst_mtu+0x28c/0x770 [ 73.609203][ T8492] ? ip_fragment.constprop.0+0x240/0x240 [ 73.614869][ T8492] ? __ip_finish_output+0x640/0x640 [ 73.620081][ T8492] ? __ip_flush_pending_frames.constprop.0+0x2c0/0x2c0 [ 73.626976][ T8492] __ip_finish_output+0x396/0x640 [ 73.632025][ T8492] ip_finish_output+0x35/0x200 [ 73.636811][ T8492] ip_mc_output+0x212/0x700 [ 73.641323][ T8492] ip_send_skb+0xd4/0x260 [ 73.645664][ T8492] udp_send_skb+0x6cd/0x11a0 [ 73.650285][ T8492] udp_sendmsg+0x1c76/0x2720 [ 73.654902][ T8492] ? ip_frag_init+0x330/0x330 [ 73.659606][ T8492] ? udp_setsockopt+0xc0/0xc0 [ 73.664311][ T8492] ? aa_sk_perm+0x316/0xaa0 [ 73.668831][ T8492] ? aa_af_perm+0x230/0x230 [ 73.673355][ T8492] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 73.679612][ T8492] ? __sanitizer_cov_trace_const_cmp2+0x22/0x80 [ 73.685876][ T8492] inet_sendmsg+0x99/0xe0 [ 73.690218][ T8492] ? inet_send_prepare+0x4d0/0x4d0 [ 73.695347][ T8492] sock_sendmsg+0xcf/0x120 [ 73.699769][ T8492] ____sys_sendmsg+0x331/0x810 [ 73.704612][ T8492] ? kernel_sendmsg+0x50/0x50 [ 73.709307][ T8492] ? do_recvmmsg+0x6c0/0x6c0 [ 73.713922][ T8492] ___sys_sendmsg+0xf3/0x170 [ 73.718515][ T8492] ? sendmsg_copy_msghdr+0x160/0x160 [ 73.723802][ T8492] ? find_held_lock+0x2d/0x110 [ 73.728654][ T8492] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 73.734917][ T8492] ? ip4_datagram_release_cb+0x222/0xaa0 [ 73.740599][ T8492] ? release_sock+0x1b/0x1b0 [ 73.745231][ T8492] ? reacquire_held_locks+0x214/0x4e0 [ 73.750615][ T8492] ? release_sock+0x1b/0x1b0 [ 73.755249][ T8492] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 73.761493][ T8492] ? __fget_light+0x215/0x280 [ 73.766173][ T8492] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 73.772553][ T8492] __sys_sendmmsg+0x195/0x470 [ 73.777334][ T8492] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 73.782394][ T8492] ? __local_bh_enable_ip+0xa0/0x110 [ 73.788294][ T8492] ? __sys_connect_file+0x4e/0x1a0 [ 73.793534][ T8492] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 73.799885][ T8492] ? __sys_connect+0x10a/0x190 [ 73.804686][ T8492] ? __sys_connect_file+0x1a0/0x1a0 [ 73.809910][ T8492] ? fd_install+0x215/0x640 [ 73.815036][ T8492] ? __sys_socket+0x16d/0x200 [ 73.819732][ T8492] __x64_sys_sendmmsg+0x99/0x100 [ 73.824679][ T8492] ? syscall_enter_from_user_mode+0x1d/0x50 [ 73.830589][ T8492] do_syscall_64+0x2d/0x70 [ 73.835034][ T8492] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 73.840956][ T8492] RIP: 0033:0x440d89 [ 73.844852][ T8492] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 73.864564][ T8492] RSP: 002b:00007ffd3a2d3828 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 73.873001][ T8492] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000440d89 [ 73.880972][ T8492] RDX: 000000000800001d RSI: 0000000020007fc0 RDI: 0000000000000005 [ 73.888965][ T8492] RBP: 0000000000000000 R08: 0000000000f0b5ff R09: 0000000000f0b5ff [ 73.897106][ T8492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 73.905097][ T8492] R13: 00007ffd3a2d3850 R14: 00007ffd3a2d3840 R15: 0000000000000003 [ 73.913167][ T8492] ================================================================================ [ 73.922532][ T8492] Kernel panic - not syncing: panic_on_warn set ... [ 73.929147][ T8492] CPU: 0 PID: 8492 Comm: syz-executor886 Not tainted 5.11.0-rc6-syzkaller #0 [ 73.937932][ T8492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 73.948017][ T8492] Call Trace: [ 73.951403][ T8492] dump_stack+0x107/0x163 [ 73.955858][ T8492] panic+0x306/0x73d [ 73.959766][ T8492] ? __warn_printk+0xf3/0xf3 [ 73.964387][ T8492] ? ubsan_epilogue+0x3e/0x5a [ 73.969098][ T8492] ubsan_epilogue+0x54/0x5a [ 73.973625][ T8492] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x181 [ 73.980409][ T8492] ? ktime_get+0x1bf/0x1e0 [ 73.984868][ T8492] ? lockdep_hardirqs_on+0x79/0x100 [ 73.990100][ T8492] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 73.995987][ T8492] ? ktime_get+0x167/0x1e0 [ 74.001125][ T8492] red_enqueue.cold+0x64/0x452 [ 74.005903][ T8492] ? red_destroy+0x70/0x70 [ 74.010320][ T8492] ? rwlock_bug.part.0+0x90/0x90 [ 74.015289][ T8492] __dev_queue_xmit+0x1913/0x2dd0 [ 74.020335][ T8492] ? netdev_core_pick_tx+0x2e0/0x2e0 [ 74.025657][ T8492] ? ip_finish_output2+0x83d/0x21b0 [ 74.030860][ T8492] ? lock_downgrade+0x6d0/0x6d0 [ 74.035807][ T8492] ? do_raw_write_lock+0x11a/0x280 [ 74.040956][ T8492] ? memcpy+0x39/0x60 [ 74.044958][ T8492] neigh_resolve_output+0x4d8/0x7e0 [ 74.050196][ T8492] ip_finish_output2+0x83d/0x21b0 [ 74.055258][ T8492] ? ip_skb_dst_mtu+0x28c/0x770 [ 74.060141][ T8492] ? ip_fragment.constprop.0+0x240/0x240 [ 74.065795][ T8492] ? __ip_finish_output+0x640/0x640 [ 74.071017][ T8492] ? __ip_flush_pending_frames.constprop.0+0x2c0/0x2c0 [ 74.077932][ T8492] __ip_finish_output+0x396/0x640 [ 74.083167][ T8492] ip_finish_output+0x35/0x200 [ 74.088044][ T8492] ip_mc_output+0x212/0x700 [ 74.092738][ T8492] ip_send_skb+0xd4/0x260 [ 74.097157][ T8492] udp_send_skb+0x6cd/0x11a0 [ 74.101751][ T8492] udp_sendmsg+0x1c76/0x2720 [ 74.106343][ T8492] ? ip_frag_init+0x330/0x330 [ 74.111143][ T8492] ? udp_setsockopt+0xc0/0xc0 [ 74.115930][ T8492] ? aa_sk_perm+0x316/0xaa0 [ 74.121495][ T8492] ? aa_af_perm+0x230/0x230 [ 74.126112][ T8492] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 74.132454][ T8492] ? __sanitizer_cov_trace_const_cmp2+0x22/0x80 [ 74.139567][ T8492] inet_sendmsg+0x99/0xe0 [ 74.143997][ T8492] ? inet_send_prepare+0x4d0/0x4d0 [ 74.149119][ T8492] sock_sendmsg+0xcf/0x120 [ 74.153564][ T8492] ____sys_sendmsg+0x331/0x810 [ 74.158429][ T8492] ? kernel_sendmsg+0x50/0x50 [ 74.166861][ T8492] ? do_recvmmsg+0x6c0/0x6c0 [ 74.171473][ T8492] ___sys_sendmsg+0xf3/0x170 [ 74.176342][ T8492] ? sendmsg_copy_msghdr+0x160/0x160 [ 74.181729][ T8492] ? find_held_lock+0x2d/0x110 [ 74.186493][ T8492] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 74.192526][ T8492] ? ip4_datagram_release_cb+0x222/0xaa0 [ 74.198179][ T8492] ? release_sock+0x1b/0x1b0 [ 74.202791][ T8492] ? reacquire_held_locks+0x214/0x4e0 [ 74.208176][ T8492] ? release_sock+0x1b/0x1b0 [ 74.212851][ T8492] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 74.219121][ T8492] ? __fget_light+0x215/0x280 [ 74.223821][ T8492] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 74.230082][ T8492] __sys_sendmmsg+0x195/0x470 [ 74.234964][ T8492] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 74.240001][ T8492] ? __local_bh_enable_ip+0xa0/0x110 [ 74.245315][ T8492] ? __sys_connect_file+0x4e/0x1a0 [ 74.250567][ T8492] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 74.256953][ T8492] ? __sys_connect+0x10a/0x190 [ 74.261745][ T8492] ? __sys_connect_file+0x1a0/0x1a0 [ 74.267175][ T8492] ? fd_install+0x215/0x640 [ 74.273254][ T8492] ? __sys_socket+0x16d/0x200 [ 74.278146][ T8492] __x64_sys_sendmmsg+0x99/0x100 [ 74.283112][ T8492] ? syscall_enter_from_user_mode+0x1d/0x50 [ 74.289112][ T8492] do_syscall_64+0x2d/0x70 [ 74.293526][ T8492] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 74.299421][ T8492] RIP: 0033:0x440d89 [ 74.303940][ T8492] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 74.323935][ T8492] RSP: 002b:00007ffd3a2d3828 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 74.332374][ T8492] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000440d89 [ 74.340784][ T8492] RDX: 000000000800001d RSI: 0000000020007fc0 RDI: 0000000000000005 [ 74.348780][ T8492] RBP: 0000000000000000 R08: 0000000000f0b5ff R09: 0000000000f0b5ff [ 74.356760][ T8492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.364735][ T8492] R13: 00007ffd3a2d3850 R14: 00007ffd3a2d3840 R15: 0000000000000003 [ 74.373564][ T8492] Kernel Offset: disabled [ 74.378735][ T8492] Rebooting in 86400 seconds..